Commit Graph

33 Commits

Author SHA1 Message Date
Tobias Urdin e754d67c8c Update cursive project paths
Change-Id: I4c3068f7547fd32439898078871842bdb28b933a
2022-11-17 09:17:25 +00:00
Tobias Urdin ad4437300d Stop using removed verifier and signer methods
These methods is removed in [1] so we move to our
wrappers for verifiers introduced in [2] and then
updateo ur testing to not use signer as well.

[1] https://github.com/pyca/cryptography/pull/6639
[2] https://review.opendev.org/c/x/cursive/+/547146

Closes-Bug: #1750633
Change-Id: I07b2d9c41c5c659692e5bfd6570b66fd646faa2b
2022-11-17 09:14:28 +00:00
Zuul 45eba574e3 Merge "Change openstack-dev to openstack-discuss" 2021-03-16 14:12:40 +00:00
LeopardMa 1b8073039a Change openstack-dev to openstack-discuss
Change-Id: Ie9fd7a36fdaf480b153e1181b827c74d4c6327c6
2021-02-08 20:40:52 +00:00
zhouxinyong a3b4760a52 Optimizing the safety of the http link site in HACKING.rst
Change-Id: I6b48ab7f7dfa94189bb24e7606b4f87a0377cf90
2021-02-08 20:39:37 +00:00
Luigi Toscano 450f696589 zuul: move jobs in-tree and related updates
Move the job definitions in-tree, updating them when needed.
This lead to several changes:

- update tox.ini and setup.cfg to align it to the newest standards
  (including newer python classifiers);
- no more python 2.x jobs;
- bump hacking requirements to make the pep8 job work with the newest
  python releases;
- ignore a few spurious flake8 warnings;
- switch to stestr as test runner;
- update cryptography dependency.

The old barbican simple-crypto job name is still available as an alias
for a while, but it is time to switch away from it, so directly
use the new job.

Depends-On: https://review.opendev.org/771443
Change-Id: Iba7b4106c49e4b492c97097648c7b8f599a2ca4b
2021-01-19 15:25:08 +01:00
OpenDev Sysadmins f8e9d5870f OpenDev Migration Patch
This commit was bulk generated and pushed by the OpenDev sysadmins
as a part of the Git hosting and code review systems migration
detailed in these mailing list posts:

http://lists.openstack.org/pipermail/openstack-discuss/2019-March/003603.html
http://lists.openstack.org/pipermail/openstack-discuss/2019-April/004920.html

Attempts have been made to correct repository namespaces and
hostnames based on simple pattern matching, but it's possible some
were updated incorrectly or missed entirely. Please reach out to us
via the contact information listed at https://opendev.org/ with any
questions you may have.
2019-04-19 19:50:53 +00:00
Zuul d7cea1f30f Merge "Address verifier DeprecationWarning" 2018-03-21 20:06:32 +00:00
Brianna Poulos c754e1583f Make barbican-tempest-plugin gate voting
Change the barbican-tempest-plugin tests to
voting, and run them for both the check and
the gate.

Change-Id: Iedc38ccd61d8361c63ed8c19106522ea268241ea
2018-03-21 14:07:02 -04:00
Brianna Poulos b93b3bfca4 Add .zuul.yaml
Add the barbican-tempest tests that use
cursive from git.  These tests are defined
in the barbican repo, and thus can be
reused here.

Needed-By: https://review.openstack.org/#/c/550996/
Change-Id: Id2aa88c12f42dd0d5ce8e0120a760be59338771e
2018-03-08 15:55:30 -05:00
Brianna Poulos edd60e3a17 Address verifier DeprecationWarning
The use of signer and verifier in cryptography has been
deprecated, and causes the following warning:

cursive/cursive/signature_utils.py:139: DeprecationWarning: signer
and verifier have been deprecated. Please use sign and verify
instead.

This patch adds a wrapper around the use of verifier, so
that sign and verify are used with cryptography, but the
client use of the library doesn't have to change.

Change-Id: Ib4aaa4fc9eb893b74f08bc8ff732a4dae152f685
2018-02-28 22:14:49 +00:00
Zuul 28dd13b94d Merge "Use openstackdocstheme for docs and release notes" 2018-01-19 20:14:08 +00:00
Thomas Bechtold a771c1e0ed Use openstackdocstheme for docs and release notes
Replace the usage of oslosphinx with openstackdocstheme and follow the
porting guide[1].
Also bump the used Sphinx version to the one from
global-requirements. Otherwise the docs build fails.

[1]
https://specs.openstack.org/openstack/docs-specs/specs/pike/os-manuals-migration.html

Change-Id: I9cb15f670e312faa49d95e14c84b7f4ec72bf8e0
2018-01-19 18:00:07 +00:00
Thomas Bechtold d574d9bfce Cleanup requirements.txt
six, lxml and netifaces are not used in the cursive codebase. Remove
them.

Change-Id: I0ea29850376f0d3334d92e6e9669bc228eb49f27
2018-01-16 07:08:01 +01:00
Brianna Poulos 74aceb2305 Add mock to test-requirements
Although mock is used in the unit tests at
d5e395cc35/cursive/tests/unit/test_signature_utils.py (L23)
it is not in test-requirements.txt.

This commit adds mock to test-requirements.txt.

Change-Id: I07aa5c65195ffe9453d2a5508e447b0bb8d834c0
2017-12-22 18:09:44 +00:00
Abhishek Kekane 74ca49cab6 Uncaught ManagedObjectNotFoundError exception leads to 500 error
ManagedObjectNotFoundError which is raised from a several places of
castellan library
(for example castellan/key_manager/barbican_key_manager.py) is not
caught in signature_utils.py.

Caught ManagedObjectNotFoundError and raised SignatureVerificationError
to avoid 500 error response.

Change-Id: Ia8310f8cc9604d11cc4a25617b55a1b61436cd71
Closes-Bug: #1736679
2017-12-07 04:25:36 +00:00
Jenkins ad25a4016c Merge "Add certificate validation" 2017-10-05 19:31:37 +00:00
Peter Hamilton ad879a1fbc Add certificate validation
This change adds support for certificate validation, including
certificate inspection utilities. Validating a certificate
requires the certificate UUID of the certificate to validate,
a set of UUIDs corresponding to the set of trusted certificates
needed to validate the certificate, and a user context for
authentication to the key manager. A new certificate verification
context is included that is used to store the set of trusted
certificates once they are loaded from the key manager. This
context is used to validate the signing certificate, verifying
that the certificate belongs to a valid certificate chain rooted
in the set of trusted certificates.

All new certificate utility code is added in a new module named
certificate_utils.

For more information on this work, see the spec:
https://review.openstack.org/#/c/488541/

SecurityImpact
DocImpact

Change-Id: I8d7f43fb4c0573ac3681147eac213b369bbbcb3b
Implements: blueprint nova-validate-certificates
2017-10-03 15:57:27 -04:00
Jenkins 056b8cc90e Merge "Update flake8 ignore list" 2017-03-29 22:35:07 +00:00
dane-fichter fac14bcac3 Make REGISTERED_TYPES public
This change makes the _REGISTERED_TYPES member
of the signature_utils object public so that it
can be referenced by Nova.

Change-Id: Ia1615dcd4ca20702693b6c5ebddc472fe29f224c
2017-03-21 09:16:16 -07:00
gengchc2 32404e9d8f Update flake8 ignore list
In hacking > 0.10.0, there is no E123 and E125, so this commit to
delete them.

Change-Id: Ic316abf5ab36200a15f3df98c9da317bfc783b5a
2017-03-10 02:05:36 +00:00
Andreas Jaeger 27c048abed Enable release notes translation
Releasenote translation publishing is being prepared. 'locale_dirs'
needs to be defined in conf.py to generate translated version of the
release notes.

Note that this repository might not get translated release notes - or
no translations at all - but we add the entry here nevertheless to
prepare for it.

Change-Id: Ie8e2150f98f5fd6e97e38d776fc1ae95f1fafbe4
2016-10-06 20:25:48 +02:00
Jenkins 8db853b757 Merge "Add oslo.log to requirements.txt" 2016-09-09 18:47:23 +00:00
Javier Pena 81d5e3d261 Add oslo.log to requirements.txt
It was being used but not listed
(d5e395cc35/cursive/signature_utils.py (L26))

Change-Id: I26d92d5d5fe7642eb62b42d7f1aa4bc18f95dd58
2016-09-01 12:23:22 +02:00
Andreas Jaeger 69ddb16dac Cleanup tox.ini
Remove old and unused constraint environments.

Note: Constraints were unused in CI before and stay unused since
cursive is not part of global requirements process.

Change-Id: I29b8eda7d99b815893da0cadc2341053bee436be
2016-08-26 11:10:43 +02:00
Dane Fichter d5e395cc35 Add should_create_verifier method
This change adds a should_create_verifier method
to the signature_utils module, since the existing
signature verification code in Glance requires
this method.

Change-Id: Ic4be5dd900425ba0eceafca97b549a499dc6606e
2016-08-02 20:59:09 -04:00
dane-fichter 0aefe7a813 Support building wheels
Tagging this project as a pure-Python module
so that py27 and py34 releases work correctly.

Change-Id: Ifec2a4fe48d00f2ee27ce7c3a2f8344a6ff33e4e
2016-06-28 10:50:14 -07:00
Jenkins bce152f2e9 Merge "Fix releasenotes building" 2016-08-02 11:58:02 +00:00
Andreas Jaeger e8714642bd Fix releasenotes building
tox -e releasenotes fails with:
Warning, treated as error:
WARNING: html_static_path entry
u'/home/aj/vcs/OpenStack/openstack/cursive/releasenotes/source/_static'
does not exist

Add missing directory - like done on similar projects -,
using a placeholder to make git happy.

Also, add build directory to .gitignore.

Remove .placeholder from .gitignore, those files are important!

Change-Id: I20d9881975eb491f6a977ae2de9406e64a659ca9
2016-07-13 09:39:52 +02:00
dane-fichter b2aba64263 Add signature_utils module
This change ports Nova's signature_utils module
into the cursive library.

Change-Id: Ic54dc204e41b3758bc2e8e1571d697931b371889
Partial-Bug: #1528349
2016-06-28 08:55:11 -07:00
dane-fichter 016cabb018 Add hacking note for copyrights
This change adds a note to HACKING.rst which
states that copyright notices should be omitted.

Change-Id: I1282e30fb3ea73b6793d7e4c5f0ff565bcd9c7bb
2016-06-28 06:45:21 -07:00
dane-fichter 0da0dd357d Initial cookiecutter commit
This commit establishes the test and
development environment for the cursive
repository.

Change-Id: I440c4c55172cddd194efafe5d8f8d18728d7f8c0
2016-06-27 18:28:04 -07:00
OpenStack Project Creator b568e8f361 Added .gitreview 2016-07-06 10:24:04 +00:00